CVE-2026-44339
Description
PraisonAI is a multi-agent teams system. Prior to praisonai version 4.6.37 and praisonaiagents version 1.6.37, praisonaiagents resolves unresolved tool names against module globals and __main__ after it fails to match the declared tool list and the registry. With the default agent configuration, _perm_allow is None, so undeclared non-dangerous tool names are not rejected by the permission gate. An attacker who can influence tool-call names can therefore invoke unintended application callables that were never declared as tools. This issue has been patched in praisonai version 4.6.37 and praisonaiagents version 1.6.37.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
praisonaiagentsPyPI | < 1.6.37 | 1.6.37 |
PraisonAIPyPI | < 4.6.37 | 4.6.37 |
Affected products
3Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- github.com/MervinPraison/PraisonAI/security/advisories/GHSA-gmjg-hv98-qggqnvdExploitVendor AdvisoryWEB
- github.com/advisories/GHSA-gmjg-hv98-qggqghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2026-44339ghsaADVISORY
News mentions
10- PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of DisclosureThe Hacker News · May 14, 2026
- Hackers Targeted PraisonAI Vulnerability Hours After DisclosureSecurityWeek · May 14, 2026
- Adobe Patches 52 Vulnerabilities in 10 ProductsSecurityWeek · May 12, 2026
- Skoda Data Breach Hits Online Shop CustomersSecurityWeek · May 11, 2026
- SailPoint Discloses GitHub Repository HackSecurityWeek · May 11, 2026
- Checkmarx Jenkins AST Plugin Compromised in Supply Chain AttackSecurityWeek · May 11, 2026
- Resurrected ‘Crimenetwork’ Marketplace Taken Down, Administrator ArrestedSecurityWeek · May 11, 2026
- Herd Security Raises $3 Million for AI-Powered Training PlatformSecurityWeek · May 6, 2026
- Oracle Debuts Monthly Critical Security Patch UpdatesSecurityWeek · May 6, 2026
- Karakurt Ransomware Negotiator Sentenced to PrisonSecurityWeek · May 5, 2026